Announcement

Collapse
No announcement yet.

password unlock question

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • password unlock question

    We have a domain controller in NY and second domain controller in chicago.

    The NY user is in chicago today,I had to unlock the NY user password from the NY AD.

    1st question:Chicago AD did not show password was locked, why is that?


    2nd question: The two AD are not in synch when putting a users's account in a state of changing password or unlocking, help?


    thanks for your replies.

  • #2
    Re: password unlock question

    When an account gets locked, it happens on one particular DC. This is normal.

    I am not sure I understand your second question, can you give us more details or an example?
    VCP on vSphere (4), MCITP:EA/DBA, MCTS:Blahblah

    Comment


    • #3
      Re: password unlock question

      An account lockout should trigger immediate replication between the following:

      Domain controllers in the same domain that are located in the same site as the PDC emulator.

      Domain controllers in the same domain that are located in the same site as the domain controller that handled the account lockout.

      Domain controllers in the same domain that are located in sites that have been configured to allow change notification between sites (and, therefore, urgent replication) with the site that contains the PDC emulator or with the site where the account lockout was handled.
      I'm guessing NY and Chicago are different sites

      So, is change notification enabled between NY and Chicago?

      Last edited by Hanley; 6th March 2009, 10:20.

      Comment


      • #4
        Re: password unlock question

        you need sometime for a replication between the dc servers

        it can take 15 min or more

        Comment


        • #5
          Re: password unlock question

          Originally posted by andrewv View Post
          you need sometime for a replication between the dc servers

          it can take 15 min or more
          That is true if you leave the Urgent replication in the hand of Intrasite replication schedule. The lowest interval for that is 15 Minutes.
          But as Hanley stated, if you enable change notifications between the sites you can have an almost instantaneous replication.
          Here is how to do that: http://windowsitpro.com/article/arti...-ad-sites.html

          Cheers
          Caesar's cipher - 3

          ZKHQ BRX HYHQWXDOOB GHFLSKHU WKLV BRX ZLOO UHDOLVH LW ZDV D ZDVWH RI WLPH!

          SFX JNRS FC U6 MNGR

          Comment


          • #6
            Re: password unlock question

            Originally posted by L4ndy View Post
            That is true if you leave the Urgent replication in the hand of Intrasite replication schedule
            Cheers
            I hate to be picky but shouldn't that read Intersite replication?

            Comment


            • #7
              Re: password unlock question

              Originally posted by Hanley View Post
              I hate to be picky but shouldn't that read Intersite replication?

              It should be, yes. That's what I meant actually, but that's one of those key words that that changes the whole meaning of the sentence .

              Thanks for the heads up mate
              Caesar's cipher - 3

              ZKHQ BRX HYHQWXDOOB GHFLSKHU WKLV BRX ZLOO UHDOLVH LW ZDV D ZDVWH RI WLPH!

              SFX JNRS FC U6 MNGR

              Comment


              • #8
                Re: password unlock question

                I didn't want to appear like a new poster being picky

                I just thought someone else may read it and get confused

                Comment


                • #9
                  Re: password unlock question

                  To clarify for others reading the thread:

                  INTRASITE replication is replication between DCs within ONE SITE.

                  INTERSITE replication is replication BETWEEN SITES.


                  Tom
                  For my own and your protection, I do not provide support by private message under any circumstances. All such messages will be deleted and ignored.

                  Anything you say will be misquoted and used against you

                  Comment

                  Working...
                  X